I have a number of ColdFusion ecommerce websites which make use of one page for displaying product detail. The unique product ID from a MySQL database is added to the end of the URL for this page and a query on the page pulls the rest of the product detail from the database. In this query I have a CFQUERYPARAM tag in place to make sure that only integers are accepted for this value.
I have error pages in place on the sites and an email gets sent to me whenever there is an error. Quite often though I am getting the following error -
"Invalid parameter type. The value specified, 160', must be a valid integer"
It isn't always for the same product ID but it does seem to be the single quote on the end of the value that's causing the problem. I cannot recreate the error (without tampering with the URL) and my code all looks OK. Is this just somebody trying to tamper with my site or am I doing something wrong within my code?